[Freeipa-users] FreeIPA and slave MIT slave KDCs
Diogenes S. Jesus
splash at gmail.com
Thu Jul 21 20:05:52 UTC 2016
Hi everyone.
I'm currently planning on deploying FreeIPA as the Master KDC (among other
things to leverage from the API and some other built-in features - like
replicas).
However I find (correct if I'm wrong) FreeIPA not very modular - therefore
I would like to know what's the strategy when deploying slave KDCs.
I've seen this thread
<https://www.redhat.com/archives/freeipa-users/2013-September/msg00319.html>
but I
don't really want to have a replica - the idea was to deploy a separate box
only running KDC - since the authentication is delegated to RADIUS for
Authentication, I don't need to expose LDAP Master to KDC slaves - If yes,
I would provide a read-only LDAP replica..
For starters, where is the FreeIPA KDC stash file stored?
--
--------
Diogenes S. de Jesus
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160721/ab225639/attachment.htm>
More information about the Freeipa-users
mailing list